Crucial Exams

AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question

A company aggregates Amazon GuardDuty findings in AWS Security Hub for 12 AWS accounts. During quarterly penetration tests, thousands of Recon:EC2/PortProbeUnprotectedPort findings are generated. The security team wants these specific findings to be automatically marked as suppressed so they disappear from the default Security Hub dashboard, yet remain stored and searchable for audit investigations. Which approach meets the requirement with the least operational overhead?

  • Define a Security Hub custom action that sets the Workflow status to SUPPRESSED and instruct penetration testers to run the action after each test.

  • Configure an Amazon EventBridge rule to invoke an AWS Lambda function that deletes matching findings from Security Hub.

  • Create a Security Hub automation rule that filters on the Recon:EC2/PortProbeUnprotectedPort finding type and sets the finding's Workflow status to SUPPRESSED.

  • Build a Security Hub insight for the finding type and rely on the insight to hide the findings from the default dashboard.

AWS Certified CloudOps Engineer Associate SOA-C03
Security and Compliance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot